From the SSL-Howto:
http://tomcat.apache.org/tomcat-5.5-doc/ssl-howto.html
There is a parameter to specify in the tomcat configuration:
anonymous wrote : algorithm The X509 algorithm to use. This defaults to the
Sun implementation (SunX509). For IBM JVMs you should use the value IbmX509.
yep! :)
View the original post :
http://www.jboss.com/index.html?module=bbop=viewtopicp=3935059#3935059
Reply to the post :
http://www.jboss.com/index.html?module=bbop=postingmode=replyp=3935059
---
This SF.Net email is sponsored by xPML, a
Mmmmh..., this is a problem.
But I see that the SUN implementation of the X509 algorithm is required by
Tomcat. How can I circumvent this problem? Can I somehow instruct Tomcat to use
a different implementation?
View the original post :
Hi,
I don't know if this is the correct place where asking this question,
eventually point me to the right resource, please
I moved an application developed on Jboss (4.0.2) in a win environment with Sun
JDK to a Jboss on a Unix AIX (IBM) environment. The application makes use of
SSL
I'll do it ASAP
View the original post :
http://www.jboss.com/index.html?module=bbop=viewtopicp=3932116#3932116
Reply to the post :
http://www.jboss.com/index.html?module=bbop=postingmode=replyp=3932116
---
This SF.Net email is sponsored by
This is the setting I'm using in jboss-web.xml:
replication-config
| replication-triggerSET_AND_NON_PRIMITIVE_GET/replication-trigger
| replication-granularityATTRIBUTE/replication-granularity
| /replication-config
|
The file tc5-cluster-service.xml is unchanged
Thanks
Ok, that may be good, but what about the real problem I mentioned? I quote it
here below:
anonymous wrote : That would not be bad, except that now a user can see the
session of a different previous user I suppose this is due the fact that
the container assigned to the user the same session
Hi, I activated session replication for my application (Jboss 4.0.2), following
the instructions in the user guide.
Everything is working fine, but I noticed that now the sessions (I'm talking
about web sessions) are still there even if I reboot Jboss. So, if a user logs
in after a reboot he
Thanks to bstansberry, his tip worked nicely.
To ben.wang: I'm using the code above into a Tomcat Valve, so this solution
doesn't add more specificity to my application. I'm managing to keep all
Jboss/Tomcat specific code into a well defined package. Using interfaces and
patterns should give
Hi,
I'm running a clustered Jboss server (4.0.2). I use session replication to
provide a fail-safe environment to the users.
My configuration follows (tc5-cluster-service.xml), I report only those
attribute I have changed from default:
attribute name=CacheModeREPL_ASYNC/attribute
| attribute
?
TREMALNAIK
View the original post :
http://www.jboss.com/index.html?module=bbop=viewtopicp=3922243#3922243
Reply to the post :
http://www.jboss.com/index.html?module=bbop=postingmode=replyp=3922243
---
This SF.net email is sponsored by: Splunk Inc
I forgot to say:
1) if this is the wrong place to post my question please tell me.
2) I understand the error is due the fact that I didn't declare the valve
Serializable, but I DON'T want to do it. Infact I want the only object be
marshalled is the HashMap that I'm trying to write to the
?
TREMALNAIK
View the original post :
http://www.jboss.com/index.html?module=bbop=viewtopicp=3921843#3921843
Reply to the post :
http://www.jboss.com/index.html?module=bbop=postingmode=replyp=3921843
---
This SF.net email is sponsored by: Splunk Inc. Do
anonymous wrote : I don't think it's the browser cache, as that would mean you
are using cookies? If you are storing their logon in their session, how about
this:
|
yes, you're right, it's tomcat which stores user principal into session. I
solved with a valve which performs the following:
Hello, I have an application runnin on Jboss 4.0.2
The users authenticate using a custom login module which reads user credentials
stored in a database
I added a functionality which lets user change their password. They can go on
working after changing it.
After 30 mins the cache expires and
thanks
View the original post :
http://www.jboss.org/index.html?module=bbop=viewtopicp=3892205#3892205
Reply to the post :
http://www.jboss.org/index.html?module=bbop=postingmode=replyp=3892205
---
SF.Net email is Sponsored by the Better
I solved defining two different login modules extending the base one. The
first, which I will deploy into the web tier server, is going to ask
authentications service to EJBs installed in the ejb tier server. The second,
which I will deploy in the EJB server will access directly to the DB.
But
madalvi wrote : Few questions:
| 1. Where do I put cotext.xml file?
| 2. Where do I put the FormAuthValve class?
|
1. I put it in the application WEB-INF folder
2. If you're using jboss 4.0.2 you just link your project to the library
niwhsa wrote : Why dont you put a servlet filter for the j_security_check
servlet in your web.xml. In the filter code, you will have access to the
request object from where you can read j_username and store it in the session.
This would be the easiest way of doing this without tampering with
If the Jboss FormAuthValve does really what you need, why don't you use it
instead of creating your own copying the former?
Just add in your context.xml file the configuration for this valve
View the original post :
http://www.jboss.org/index.html?module=bbop=viewtopicp=3891402#3891402
Hi, I have to deploy an application in a clustered environment: web and ejb
tier live on separate JVMs (two phisically separate PCs). I developed a
LoginModule which accesses to login credentials stored in a Database. Now I'd
like to deploy the LM only on the EJB tier PC to avoid installation
Hi, I decided to let multiple logins for the same user. This is because the
client asked me to define a 'administrator' account which many users may access
from different Clients in the Internet. Different users whith the same name are
logged in using different sessions.
I noticed that if a
maybe I'm wrong, but maybe the problem depends by other software binding to the
ports your server needs. Why don't you download a port scanning sw and check
this?
View the original post :
http://www.jboss.org/index.html?module=bbop=viewtopicp=3890555#3890555
Reply to the post :
No, I'm able to fetch the user name from request, if I am in a JSP or whetever
I can have access to the http request. I need to fetch user name if I don't
have access to the request, i.e., from an helper class.
Is it possible doing it calling methods on mbean server service or security
Did you try without the tagrealm-nametimesheet/realm-name ? I'm not able to
say more...
View the original post :
http://www.jboss.org/index.html?module=bbop=viewtopicp=3890138#3890138
Reply to the post :
http://www.jboss.org/index.html?module=bbop=postingmode=replyp=3890138
your method is simpler then what I figured out, certailnly:
Context securityCtx = null;
| AuthenticationManager securityMgr = null;
| InitialContext iniCtx = new InitialContext();
| securityCtx = (Context) iniCtx.lookup(java:comp/env/security);
| securityMgr = (AuthenticationManager)
security-domain
flushOnSessionInvalidation=truejava:/jaas/myRealm/security-domain
simple, isn't it? ;)
View the original post :
http://www.jboss.org/index.html?module=bbop=viewtopicp=3890010#3890010
Reply to the post :
http://www.jboss.org/index.html?module=bbop=postingmode=replyp=3890010
I don't know if it helps, but give a look at
http://wiki.jboss.org/wiki/Wiki.jsp?page=CachingLoginCredentials
View the original post :
http://www.jboss.org/index.html?module=bbop=viewtopicp=3890047#3890047
Reply to the post :
what did you put in your web.xml as
login-config
| ..
| /login-config
|
View the original post :
http://www.jboss.org/index.html?module=bbop=viewtopicp=3890049#3890049
Reply to the post :
http://www.jboss.org/index.html?module=bbop=postingmode=replyp=3890049
Hi, I'm trying to retrieve the name of the user who is currently logged, but I
can't get it from the request.
I read a lot of documentation, I swear, but I was not able to figure it out,
maybe it's really simple.
How can I access this information?
Thanks
View the original post :
You made te right assumption, I deployed a JAR file for EJBs and a WAR file for
Servlets and JSP. The exceptions package is included in both. Thanks very much
for your help.
View the original post :
http://www.jboss.org/index.html?module=bbop=viewtopicp=3889881#3889881
Reply to the post :
Hello, is it possible running jboss from Eclipse, using the source package, to
let me debugging it, i.e. defining breakpoints throught its java files?
Thanks
View the original post :
http://www.jboss.org/index.html?module=bbop=viewtopicp=3889707#3889707
Reply to the post :
I think you misunderstood what my need was, probabily I was not suffiecntly
clear. The step you suggest was to enable remote debugging, to read debugging
(i.e. log4j) infos from a remote server.
What I need is a way to let me step through jboss source code, defining Eclipse
debugger
Hi, I have already posted this on the Tomcat/Servlet forum, because I thought
it was a Servlet problem, now I'm not so sure. I hope this is the correct forum.
Have a look to the following piece of code, please. It's a struts action,
calling a method on a EJB, throwing a
Debugging jboss code I see now that there is a moment in which the exception is
embedded in a MBeanException. Is this useful to understand the cause of this
strange behaviour?
thanks,
View the original post :
http://www.jboss.org/index.html?module=bbop=viewtopicp=3889794#3889794
Reply to the
Hello folks, I'm using Jboss 4.0.2. I still have some problems with login
modules. My login-config.xml follows:
application-policy name = CpRealm
| authentication
| login-module code = com.ciccio.pasticcio.CpLoginModule flag =
required
| module-option
Hi folks, I have recently upgraded from jboss 4.0.0RC1 to 4.0.2 and I noticed a
strange (well, strange for me) behaviour in exception handling.
please have a look at the following code, it's a struts action:
public ActionForward execute()
| {
| //...
|
I'm using jboss 4.0 beta, anyway. Yomorrow I'm going to test with the new
stable 4.0.2, maybe it will behave differently.
Thanks for your help, anyway
TREMALNAIK
View the original post :
http://www.jboss.org/index.html?module=bbop=viewtopicp=3888797#3888797
Reply to the post :
http
the breakpoint stops execution, showing that
myLoginModule.login() has been called
2) I logout, invalidating the session in my logout action
3) I login again at the login page, logon is successful, but the breakpoint
doesn't stop execution
Can you please explain this fact to me, please?
TREMALNAIK
the better
way to achieve this?
I mean, how can I access the LoginContext of the user and call its logout()
method? I cannot even see the LoginContext, which is hide from the developer
perspective, so I cannot put it in the session or similar.
Can you help me?
TREMALNAIK
View the original post
40 matches
Mail list logo